Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
File: lwhyRZO0dTF1shSBLPaJGmRfhMU.mft (raw, json)
Hash identifier: CXcGDvdNtxkbhKFM56sK8muonQENmW7v+MLM6sC1mEo=
Subject key identifier: D4:03:7F:D8:3A:C1:33:66:57:F9:C7:07:47:5E:3D:23:DA:C7:CE:23
Authority key identifier: 97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
Certificate issuer: /CN=9708724593b4753175b214812cf6891a645f84c5
Certificate serial: 019A51BE2FC6E699AD3AB32DB30BAFBACDDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
Manifest number: 0234
Signing time: Wed 05 Nov 2025 02:00:09 +0000
Manifest this update: Wed 05 Nov 2025 02:00:09 +0000
Manifest next update: Thu 06 Nov 2025 02:00:09 +0000
Files and hashes: 1: lwhyRZO0dTF1shSBLPaJGmRfhMU.crl (hash: Bk1t5zzug03KXpkljbLdp862uPzZAFuzc93QzAxqYck=)
2: tTnQsLwHNO3gLW3S0MP8mMKmk64.roa (hash: DzDj3u7iBFvq9rklayzZVdsYdkT8c0vWssYs/0kky9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 02:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:2f:c6:e6:99:ad:3a:b3:2d:b3:0b:af:ba:cd:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9708724593b4753175b214812cf6891a645f84c5
Validity
Not Before: Nov 5 02:00:09 2025 GMT
Not After : Nov 6 02:00:09 2025 GMT
Subject: CN=d4037fd83ac1336657f9c707475e3d23dac7ce23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:6b:08:ed:f3:a6:12:da:88:40:34:20:88:38:
db:ce:b6:68:81:fc:34:89:5c:e6:9b:85:3f:9c:cd:
32:81:bd:f3:99:60:95:b4:af:ce:d9:5b:81:dd:d4:
fd:58:1f:b3:2b:84:19:c4:64:2b:f6:cf:f8:ee:8f:
20:a3:8f:c8:ec:63:a1:ce:85:18:bd:f8:90:8c:47:
a1:40:db:74:1f:09:41:9b:ee:47:55:c6:f7:c9:c2:
9c:08:e9:ff:5c:2e:04:90:ff:f0:4f:71:48:47:3b:
d2:96:d4:65:4f:e2:b9:d9:b0:44:c2:5b:93:bc:4e:
c0:f8:ca:90:fe:0e:16:e2:8e:52:a4:aa:8a:e3:af:
a6:9b:32:84:93:e6:e0:29:e5:d1:2e:2e:bf:56:87:
95:b9:2c:3b:e9:36:34:57:db:9b:07:44:b2:b6:f0:
78:df:24:a3:3b:ae:c2:53:5c:41:36:fb:da:5e:91:
a0:9f:41:96:32:bc:42:30:cb:d4:b0:03:f4:14:f4:
20:0d:38:86:b9:74:fb:c3:24:82:ae:98:93:70:f9:
a5:00:50:a4:86:17:5a:8e:f2:01:9f:c3:32:aa:d5:
54:df:b1:8d:99:17:10:b9:b4:6a:b7:a1:f9:65:3a:
34:80:ff:f1:4f:75:0a:4e:9e:17:87:79:cd:0b:36:
48:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:03:7F:D8:3A:C1:33:66:57:F9:C7:07:47:5E:3D:23:DA:C7:CE:23
X509v3 Authority Key Identifier:
keyid:97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:3e:fe:59:56:6a:3d:d0:be:1e:d7:15:5c:6c:52:50:8e:69:
52:39:96:15:f0:4e:dd:5c:2c:a6:65:31:61:aa:54:d1:65:35:
c2:e7:6d:e8:9e:98:81:18:5e:ff:96:a8:c5:27:79:c5:b6:01:
f6:6c:4f:9e:e2:62:bb:ab:43:98:f8:c9:79:e4:2c:03:44:96:
2f:ea:b8:95:62:83:a1:01:25:54:91:f9:01:c1:f6:f6:2d:b5:
d6:af:f2:cd:20:c9:98:54:1c:b4:ab:24:7b:4f:4c:23:ce:c7:
04:31:7d:b9:13:1d:f3:df:d4:cc:50:87:0e:e9:e7:d1:fa:80:
92:cf:c8:92:52:80:a6:74:ba:75:9f:e8:01:83:fd:aa:38:41:
5e:a0:58:e5:02:ef:ba:18:7a:68:e1:07:f6:c6:0b:47:41:d1:
df:e1:1e:78:47:4d:b8:9f:d7:7a:de:d2:6e:b3:93:96:ae:13:
01:75:f6:09:ad:1c:89:f9:e9:ba:13:61:f1:2a:ff:f6:e3:82:
05:51:2f:45:42:f7:f2:a5:91:96:dd:f4:ab:81:fc:c1:c6:2a:
49:8d:50:fc:ee:73:e7:40:67:47:fa:3e:ad:4d:c3:5c:bd:bc:
e8:b0:46:74:6d:12:f0:59:44:5f:be:6e:fa:ee:77:da:16:27:
e3:e0:12:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRvi/G5pmtOrMtswuvus3aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3MDg3MjQ1OTNiNDc1MzE3NWIyMTQ4MTJjZjY4OTFhNjQ1
Zjg0YzUwHhcNMjUxMTA1MDIwMDA5WhcNMjUxMTA2MDIwMDA5WjAzMTEwLwYDVQQD
EyhkNDAzN2ZkODNhYzEzMzY2NTdmOWM3MDc0NzVlM2QyM2RhYzdjZTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9msI7fOmEtqIQDQgiDjbzrZogfw0
iVzmm4U/nM0ygb3zmWCVtK/O2VuB3dT9WB+zK4QZxGQr9s/47o8go4/I7GOhzoUY
vfiQjEehQNt0HwlBm+5HVcb3ycKcCOn/XC4EkP/wT3FIRzvSltRlT+K52bBEwluT
vE7A+MqQ/g4W4o5SpKqK46+mmzKEk+bgKeXRLi6/VoeVuSw76TY0V9ubB0SytvB4
3ySjO67CU1xBNvvaXpGgn0GWMrxCMMvUsAP0FPQgDTiGuXT7wySCrpiTcPmlAFCk
hhdajvIBn8MyqtVU37GNmRcQubRqt6H5ZTo0gP/xT3UKTp4Xh3nNCzZInwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNQDf9g6wTNmV/nHB0dePSPax84jMB8GA1UdIwQY
MBaAFJcIckWTtHUxdbIUgSz2iRpkX4TFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHdoeVJaTzBkVEYxc2hTQkxQYUpHbVJmaE1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9hZThjMzUtZjlkNy00MzdiLTg5OTYt
MzJhNDI3OGU1YmM1LzEvbHdoeVJaTzBkVEYxc2hTQkxQYUpHbVJmaE1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9hZThjMzUtZjlkNy00MzdiLTg5OTYtMzJhNDI3OGU1YmM1
LzEvbHdoeVJaTzBkVEYxc2hTQkxQYUpHbVJmaE1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPz7+WVZq
PdC+HtcVXGxSUI5pUjmWFfBO3VwspmUxYapU0WU1wudt6J6YgRhe/5aoxSd5xbYB
9mxPnuJiu6tDmPjJeeQsA0SWL+q4lWKDoQElVJH5AcH29i211q/yzSDJmFQctKsk
e09MI87HBDF9uRMd89/UzFCHDunn0fqAks/IklKApnS6dZ/oAYP9qjhBXqBY5QLv
uhh6aOEH9sYLR0HR3+EeeEdNuJ/Xet7SbrOTlq4TAXX2Ca0cifnpuhNh8Sr/9uOC
BVEvRUL38qWRlt30q4H8wcYqSY1Q/O5z50BnR/o+rU3DXL286LBGdG0S8FlEX75u
+u532hYn4+AS8A==
-----END CERTIFICATE-----
Generated at Wed Nov 5 11:59:29 2025 by rpki-client